From: Engelhard M. Labiro (engelhard@xxxxxxxxxxxxxx)
Date: Tue Apr 23 2002 - 21:33:02 GMT-3
"conduits" IS to permit traffic flows from lower security level
(outside interface) to higher security level (inside interface).
For traffic from inside to outside , you have to configure
"nat" and "global" command. This hides the inside IP addresses
(nat 0 is another case, which it doesn`t hide inside IP addresses).
> Exactly the opposite. "conduits" need to be built between inside
> and outside interfaces to permit traffic flows.
>
> Steve
> ----- Original Message -----
> From: "Bill Mckenzie" <bmckenzie@hotmail.com>
> To: <ccielab@groupstudy.com>
> Sent: Tuesday, April 23, 2002 3:58 PM
> Subject: PIX default
>
>
> > I'm having a problem with our PIX.
> >
> > By default, isn't everything on the inside able to contact
>everything on the outside?
> >
> > Am I missing something?
> >
> > Thanks,
> > Bill Mckenzie
Engelhard M. Labiro$B!!(B(engelhard@netmarks.co.jp)
Security Group, Technical Solution Center, Netmarks Inc.
2-13-34 Konan, Minato-Ku, Tokyo 108-0075
Tel: +81-3-5461-2575, Fax: +81-3-5461-2093
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:18 GMT-3